You may provision networks and remove or de-provision networks from individual devices. You can also provision networks when creating a network in IPAM (for more information, see Adding IPv4 and IPv6 Network Containers and Networks). Network provisioning and de-provisioning comprises the second type of port control tasks under Network Insight. Provisioning a network involves creating a new network and adding it to the list of networks in IPAM, and also involves changes to device configuration.
If a port control task requires administrative approval, and it is not approved before its scheduled execution, the task appears as unsuccessful in Task Manager.
Provisioning networks also allows for provisioning VLANs. If devices do not support VLANs, options for provisioning VLANs do not appear for those devices and their associated interfaces.
If a network is already provisioned for an interface, regardless of its status under Grid Manager, you cannot provision another network upon it.
Only available interfaces that support network provisioning are shown in Grid Manager for provisioning tasks. The horizontal toolbar also provides related functions:
Provision Network: Available for discovered devices and for managed devices, this icon opens the Provision Network feature, allowing you to provision an existing IPAM network onto the selected device by selecting a device interface or assigning a VLAN. Grid Manager creates a new Port Control task, and you can choose the interface on which the network is provisioned, along with VLAN configuration and other settings.
De-provision Network: Available for networks that are managed under IPAM, for de-provisioning on devices that are managed under IPAM on the Data Management –> Devices page. A dialog box appears summarizing the task you are instructing Grid Manager to perform. This action changes the configuration of the device.
To provision IPAM networks onto a device:
Click Next to go to the second step in the Provision Network wizard, in which you define whether to provision the configuration now or to schedule it.
To immediately provision the new network on the chosen device, select Now.
You can choose to have Grid Manager create the network at a later time. To do so, select Later. Choose a Selected time by entering or selecting a Start Date (click the calendar icon to choose a calendar date) and a Start Time, and choose a Time Zone.
Click Save & Close when finished.
De-provisioning a network changes the device configuration. As such, a separate task is created for the action under Task Manager. However, you cannot schedule the de-provisioning of a network–once you confirm the de-provisioning action in Grid Manager, the action takes place. Each managed and unmanaged device under Grid Manager provides a Permissions page (DataManagement–>Devices–> Select Device –> click Edit–>Permissions tab). By default, no admin group or Role is assigned to managed devices. Infoblox recommends using caution when assigning rights to users that may be able to access devices and change device configurations.
De-provisioning networks is a relatively straightforward task that can be performed for any selected network, whether it is a non-NIOS network (a network that cannot be configured in IPAM), an unmanaged network, or a managed network.
If the network is also managed under IPAM, de-provisioning the network from a device does not delete the network from IPAM.
If you are deleting a network from the main IPAM page, any devices that have endpoints provisioned on that network are also de-provisioned for that network.
A network may not be de-provisioned until after you set the interface for the network on the device(s), to Down in Admin Status.
Click Yes to confirm the de-provisioning action.
Ensure that the de-provisioning of the network has administrative approval.
You can also select multiple network entries from the list on the same device and de-provision all of them in a single step. Exercise caution when performing such actions.
De-Provisioning Networks by Deleting Networks in IPAM
Deleting a network under IPAM creates a new Object Change task in Task Manager. You can check the Administration–>Workflow–>TaskManager page to view its status.
You can simply delete a managed or unmanaged network in IPAM to de-provision it. Doing so opens a Delete Confirmation dialog. IPAM also automatically prompts you to verify that you are deleting the network from all devices that have interfaces connecting to the network, subject to verification and permissions.
By default, when you delete the network, all devices that connect to the network, that are also managed by IPAM, are part of the new de-provisioning port control task created by Grid Manager. If you do not want the network
de-provisioned from all devices, clear the De-provision network from all interfaces check box or simply cancel out from the Delete Confirmation dialog.
Issues can occur when attempting to define port configurations on devices. When you define port configurations through Network Insight, you are defining a port control task that can be viewed, investigated, and run again when necessary. You do so by using the Task Manager (Administration –> Workflow –> Task Manager) and looking for tasks that show a Type of Port Control. Each Port Control task provides an Execution Log and the ability to re-run a task that has failed for any reason.
The Task Manager page provides an Action iconcolumn with a series of menu options for features related to Grid Manager tasks to manage task execution, scheduling and approval. Menu choices change based upon the context and the current state of tasks in the table; features available in the Action menu include the following:
Figure 15.17 Task Manager Action menu
The Execution Log allows you to see task behavior when it executes. You can check the configuration directly on the device and re-run the job if it has failed, by selecting Re-execute from the Action menu on the Task Manager page.
This page has no comments.